c871c3b2b05ea2ed2487882d0c4df8693a5f27ee940614fa3a76ed5fd5c8e6f3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c871c3b2b05ea2ed2487882d0c4df8693a5f27ee940614fa3a76ed5fd5c8e6f3
Size

323KB
Sample

221101-g1z2yshgck
MD5

2af4349af42d76fdba8f7febea13ea7e
SHA1

9b452d6d767fd9553c15400ef473edd6e477e832
SHA256

c871c3b2b05ea2ed2487882d0c4df8693a5f27ee940614fa3a76ed5fd5c8e6f3
SHA512

5a2b180ffdee58707727e9a048c25488f089453195da5ae0c652281f6ccb5e1c1757e9ef3b6ac561ebc58d270769a88a9111ab7b71c10d21a091561315451c8a
SSDEEP

6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj

Score

8^/10

Malware Config

Targets

- Target
  
  c871c3b2b05ea2ed2487882d0c4df8693a5f27ee940614fa3a76ed5fd5c8e6f3
- Size
  
  323KB
- MD5
  
  2af4349af42d76fdba8f7febea13ea7e
- SHA1
  
  9b452d6d767fd9553c15400ef473edd6e477e832
- SHA256
  
  c871c3b2b05ea2ed2487882d0c4df8693a5f27ee940614fa3a76ed5fd5c8e6f3
- SHA512
  
  5a2b180ffdee58707727e9a048c25488f089453195da5ae0c652281f6ccb5e1c1757e9ef3b6ac561ebc58d270769a88a9111ab7b71c10d21a091561315451c8a
- SSDEEP
  
  6144:eKlzr1sYCzek2ciDaP9Xk6Ln1W8W/9InBSkZZmLdGcAdgdY6RKpjS:eGhQ2ciDq9ZL1W8q9InBRqELdolRKpj
Score

8^/10
- Executes dropped EXE
- Suspicious use of SetThreadContext
behavioral1

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Scheduled Task

Persistence

Scheduled Task

Privilege Escalation

Scheduled Task

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1